Selective security regulation for network communication

ABSTRACT

Embodiments of the present invention provide a system for providing selective security regulations associated with network communications to users. The system is configured for extracting user data associated with a user, identifying one or more characteristics based on the extracted user data, generating a custom security package for the user based on the one or more characteristics, displaying one or more options associated with the custom security package on a user device of the user, prompting the user to select at least one option from the one or more options, receiving the at least one option from the user, and deploying a functionality associated with the at least one option from the custom security package.

CROSS-REFERENCE TO RELATED APPLICATION

The present application is a continuation of co-pending U.S. patentapplication Ser. No. 16/860,832, of the same title and filed on Apr. 28,2020, which is assigned to the assignee hereof and the contents thereofare hereby expressly incorporated by reference.

BACKGROUND

Conventional systems do not have the capability to provide selectivesecurity regulations to users. As such, there exists a need for a systemthat provides selective security regulations associated with networkcommunications to users.

BRIEF SUMMARY

The following presents a summary of certain embodiments of theinvention. This summary is not intended to identify key or criticalelements of all embodiments nor delineate the scope of any or allembodiments. Its sole purpose is to present certain concepts andelements of one or more embodiments in a summary form as a prelude tothe more detailed description that follows.

Embodiments of the present invention address the above needs and/orachieve other advantages by providing apparatuses (e.g., a system,computer program product and/or other devices) and methods for providingselective security regulations associated with network communications tousers. The system embodiments may comprise one or more memory deviceshaving computer readable program code stored thereon, a communicationdevice, and one or more processing devices operatively coupled to theone or more memory devices, wherein the one or more processing devicesare configured to execute the computer readable program code to carryout the invention. In computer program product embodiments of theinvention, the computer program product comprises at least onenon-transitory computer readable medium comprising computer readableinstructions for carrying out the invention. Computer implemented methodembodiments of the invention may comprise providing a computing systemcomprising a computer processing device and a non-transitory computerreadable medium, where the computer readable medium comprises configuredcomputer program instruction code, such that when said instruction codeis operated by said computer processing device, said computer processingdevice performs certain operations to carry out the invention.

In some embodiments, the present invention extracts user data associatedwith a user, identifies one or more characteristics based on theextracted user data, generates a custom security package for the userbased on the one or more characteristics, displays one or more optionsassociated with the custom security package on a user device of theuser, prompts the user to select at least one option from the one ormore options, receives the at least one option from the user; anddeploys a functionality associated with the at least one option from thecustom security package.

In some embodiments, the present invention deploys the functionalitybased on generating a selective security package comprising thefunctionality associated with the at least option selected by the userand transferring the selective security package to the user device ofthe user.

In some embodiments, the present invention transfers the selectivesecurity package to one or more entity systems associated with handlingnetwork communications of the user.

In some embodiments, the present invention identifies a networkcommunication initiated by the user, determines a type of the networkcommunication, identifies that the type of the network communicationmatches with a predetermined type of network communication, and causesthe selective security package to trigger an action.

In some embodiments, triggering the action comprises generating andtransmitting a notification associated with the network communication.

In some embodiments, triggering the action comprises initiatingadditional authentication for completing the network communication.

In some embodiments, triggering the action comprises deferringcompletion of the network communication.

The features, functions, and advantages that have been discussed may beachieved independently in various embodiments of the present inventionor may be combined with yet other embodiments, further details of whichcan be seen with reference to the following description and drawings.

BRIEF DESCRIPTION OF THE DRAWINGS

Having thus described embodiments of the invention in general terms,reference will now be made the accompanying drawings, wherein:

FIG. 1 provides a block diagram illustrating a system environment forproviding selective security regulations associated with networkcommunications to users, in accordance with an embodiment of theinvention;

FIG. 2 provides a block diagram illustrating the entity system 200 ofFIG. 1 , in accordance with an embodiment of the invention;

FIG. 3 provides a block diagram illustrating a selective securityregulation system 300 of FIG. 1 , in accordance with an embodiment ofthe invention;

FIG. 4 provides a block diagram illustrating the computing device system400 of FIG. 1 , in accordance with an embodiment of the invention;

FIG. 5 provides a flowchart illustrating a process flow for providingselective security regulations associated with network communications tousers, in accordance with an embodiment of the invention; and

FIG. 6 provides a flowchart illustrating a process flow for implementingthe selective security regulations associated with networkcommunications, in accordance with an embodiment of the invention.

DETAILED DESCRIPTION OF EMBODIMENTS OF THE INVENTION

Embodiments of the present invention will now be described more fullyhereinafter with reference to the accompanying drawings, in which some,but not all, embodiments of the invention are shown. Indeed, theinvention may be embodied in many different forms and should not beconstrued as limited to the embodiments set forth herein; rather, theseembodiments are provided so that this disclosure will satisfy applicablelegal requirements. Where possible, any terms expressed in the singularform herein are meant to also include the plural form and vice versa,unless explicitly stated otherwise. Also, as used herein, the term “a”and/or “an” shall mean “one or more,” even though the phrase “one ormore” is also used herein. Furthermore, when it is said herein thatsomething is “based on” something else, it may be based on one or moreother things as well. In other words, unless expressly indicatedotherwise, as used herein “based on” means “based at least in part on”or “based at least partially on.” Like numbers refer to like elementsthroughout.

Many of the example embodiments and implementations described hereincontemplate interactions engaged in by a user with a computing deviceand/or one or more communication devices and/or secondary communicationdevices. A “user”, as referenced herein, may refer to an entity orindividual that has the ability and/or authorization to access and useone or more applications provided by an entity or the system of thepresent invention. Furthermore, as used herein, the term “user computingdevice” or “mobile device” may refer to mobile phones, computingdevices, tablet computers, wearable devices, smart devices and/or anyportable electronic device capable of receiving and/or storing datatherein.

A “user interface” is any device or software that allows a user to inputinformation, such as commands or data, into a device, or that allows thedevice to output information to the user. For example, the userinterface includes a graphical user interface (GUI) or an interface toinput computer-executable instructions that direct a processing deviceto carry out specific functions. The user interface typically employscertain input and output devices to input data received from a user orto output data to a user. These input and output devices may include adisplay, mouse, keyboard, button, touchpad, touch screen, microphone,speaker, LED, light, joystick, switch, buzzer, bell, and/or other userinput/output device for communicating with one or more users.

In some embodiments, an “entity” as used herein may include anyfinancial institutions such as commercial banks, thrifts, federal andstate savings banks, savings and loan associations, credit unions,investment companies, insurance companies and the like. In someembodiments, the financial institution may allow a customer to establishan account with the financial institution. As described herein, a “user”may be a customer or a potential customer of the entity. In someembodiments, a “user” may be a financial institution customer (e.g., anaccount holder or a person who has an account (e.g., banking account,credit account, or the like)). An “account” or “resource pool” may bethe relationship that the customer has with the financial institution.Examples of accounts include a deposit account, such as a transactionalaccount (e.g. a banking account), a savings account, an investmentaccount, a money market account, a time deposit, a demand deposit, apre-paid account, a credit account, a non-monetary customer informationthat includes only personal information associated with the customer, orthe like. The account is associated with and/or maintained by afinancial institution.

FIG. 1 provides a block diagram illustrating a system environment 100for providing selective security regulations associated with networkcommunications to users, in accordance with an embodiment of theinvention. As illustrated in FIG. 1 , the environment 100 includes aselective security regulation system 300, an entity system 200, and acomputing device system 400. One or more users 110 may be included inthe system environment 100, where the users 110 interact with the otherentities of the system environment 100 via a user interface of thecomputing device system 400. In some embodiments, the one or moreuser(s) 110 of the system environment 100 may be customers of an entityassociated with the entity system 200. In some embodiments, the entitymay be any institutions that facilitates network communications of theuser. As described herein, a network communication may be a transactioninitiated by the user. For example, a user may have an account with theentity, where the user may perform one or more transactions using theresources in the account.

The entity system(s) 200 may be any system owned or otherwise controlledby an entity to support or perform one or more process steps describedherein. In some embodiments, the entity is a financial institution. Insuch an embodiment, the one or more user(s) 110 may be customers thathold an account with the financial institution, where the financialinstitution maintain resources (funds) associated with the accounts ofthe users 110. In some embodiments, the entity may be an organizationthat facilitates resource transactions of a user.

The selective security regulation system 300 is a system of the presentinvention for performing one or more process steps described herein. Insome embodiments, the selective security regulation system 300 may be anindependent system. In some embodiments, the selective securityregulation system 300 may be a part of the entity system 200.

The selective security regulation system 300, the entity system 200, andthe computing device system 400 may be in network communication acrossthe system environment 100 through the network 150. The network 150 mayinclude a local area network (LAN), a wide area network (WAN), and/or aglobal area network (GAN). The network 150 may provide for wireline,wireless, or a combination of wireline and wireless communicationbetween devices in the network. In one embodiment, the network 150includes the Internet. In general, the selective security regulationsystem 300 is configured to communicate information or instructions withthe entity system 200, and/or the computing device system 400 across thenetwork 150.

The computing device system 400 may be a system owned or controlled bythe entity of the entity system 200 and/or the user 110. As such, thecomputing device system 400 may be a computing device of the user 110.In general, the computing device system 400 communicates with the user110 via a user interface of the computing device system 400, and in turnis configured to communicate information or instructions with theselective security regulation system 300, and/or entity system 200across the network 150.

FIG. 2 provides a block diagram illustrating the entity system 200, ingreater detail, in accordance with embodiments of the invention. Asillustrated in FIG. 2 , in one embodiment of the invention, the entitysystem 200 includes one or more processing devices 220 operativelycoupled to a network communication interface 210 and a memory device230. In certain embodiments, the entity system 200 is operated by afirst entity, such as a financial institution.

It should be understood that the memory device 230 may include one ormore databases or other data structures/repositories. The memory device230 also includes computer-executable program code that instructs theprocessing device 220 to operate the network communication interface 210to perform certain communication functions of the entity system 200described herein. For example, in one embodiment of the entity system200, the memory device 230 includes, but is not limited to, a selectivesecurity regulation application 250, one or more entity applications270, and a data repository 280 comprising information associated withuser data 283. User data 283 may comprise personal data, transactiondata, account data, and/or the like. The computer-executable programcode of the network server application 240, the selective securityregulation application 250, the one or more entity application 270 toperform certain logic, data-extraction, and data-storing functions ofthe entity system 200 described herein, as well as communicationfunctions of the entity system 200.

The network server application 240, the selective security regulationapplication 250, and the one or more entity applications 270 areconfigured to store data in the data repository 280 or to use the datastored in the data repository 280 when communicating through the networkcommunication interface 210 with the selective security regulationsystem 300, and/or the computing device system 400 to perform one ormore process steps described herein. In some embodiments, the entitysystem 200 may receive instructions from the selective securityregulation system 300 via the selective security regulation application250 to perform certain operations. The selective security regulationapplication 250 may be provided by the selective security regulationsystem 300. The one or more entity applications 270 may be any of theapplications used, created, modified, facilitated, and/or managed by theentity system 200.

FIG. 3 provides a block diagram illustrating the selective securityregulation system 300 in greater detail, in accordance with embodimentsof the invention. As illustrated in FIG. 3 , in one embodiment of theinvention, the selective security regulation system 300 includes one ormore processing devices 320 operatively coupled to a networkcommunication interface 310 and a memory device 330. In certainembodiments, the selective security regulation system 300 is operated byan entity, such as a financial institution. In some embodiments, theselective security regulation system 300 is owned or operated by theentity of the entity system 200. In some embodiments, the selectivesecurity regulation system 300 may be an independent system. Inalternate embodiments, the selective security regulation system 300 maybe a part of the entity system 200.

It should be understood that the memory device 330 may include one ormore databases or other data structures/repositories. The memory device330 also includes computer-executable program code that instructs theprocessing device 320 to operate the network communication interface 310to perform certain communication functions of the selective securityregulation system 300 described herein. For example, in one embodimentof the selective security regulation system 300, the memory device 330includes, but is not limited to, a network provisioning application 340,a selective security regulation application 350, an artificialintelligence engine 360, a exposure rating application 370, a tailoredsecurity package generator 380, a notification generator 385, and a datarepository 390 comprising data processed or accessed by one or moreapplications in the memory device 330. The computer-executable programcode of the network provisioning application 340, the selective securityregulation application 350, the artificial intelligence engine 360, theexposure rating application 370, the tailored security package generator380, and the notification generator 385 may instruct the processingdevice 320 to perform certain logic, data-processing, and data-storingfunctions of the selective security regulation system 300 describedherein, as well as communication functions of the selective securityregulation system 300.

The network provisioning application 340, the selective securityregulation application 350, the artificial intelligence engine 360, theexposure rating application 370, the tailored security package generator380, and the notification generator 385 are configured to invoke or usethe data in the data repository 390 when communicating through thenetwork communication interface 310 with the entity system 200, and/orthe computing device system 400. In some embodiments, the networkprovisioning application 340, the selective security regulationapplication 350, the artificial intelligence engine 360, the exposurerating application 370, the tailored security package generator 380, andthe notification generator 385 may store the data extracted or receivedfrom the entity system 200, and the computing device system 400 in thedata repository 390. In some embodiments, the network provisioningapplication 340, the selective security regulation application 350, theartificial intelligence engine 360, the exposure rating application 370,the tailored security package generator 380, and the notificationgenerator 385 may be a part of a single application.

FIG. 4 provides a block diagram illustrating a computing device system400 of FIG. 1 in more detail, in accordance with embodiments of theinvention. However, it should be understood that a mobile telephone ismerely illustrative of one type of computing device system 400 that maybenefit from, employ, or otherwise be involved with embodiments of thepresent invention and, therefore, should not be taken to limit the scopeof embodiments of the present invention. Other types of computingdevices may include portable digital assistants (PDAs), pagers, mobiletelevisions, entertainment devices, desktop computers, workstations,laptop computers, cameras, video recorders, audio/video player, radio,GPS devices, wearable devices, Internet-of-things devices, augmentedreality devices, virtual reality devices, automated teller machinedevices, electronic kiosk devices, or any combination of theaforementioned.

Some embodiments of the computing device system 400 include a processor410 communicably coupled to such devices as a memory 420, user outputdevices 436, user input devices 440, a network interface 460, a powersource 415, a clock or other timer 450, a camera 480, and a positioningsystem device 475. The processor 410, and other processors describedherein, generally include circuitry for implementing communicationand/or logic functions of the computing device system 400. For example,the processor 410 may include a digital signal processor device, amicroprocessor device, and various analog to digital converters, digitalto analog converters, and/or other support circuits. Control and signalprocessing functions of the computing device system 400 are allocatedbetween these devices according to their respective capabilities. Theprocessor 410 thus may also include the functionality to encode andinterleave messages and data prior to modulation and transmission. Theprocessor 410 can additionally include an internal data modem. Further,the processor 410 may include functionality to operate one or moresoftware programs, which may be stored in the memory 420. For example,the processor 410 may be capable of operating a connectivity program,such as a web browser application 422. The web browser application 422may then allow the computing device system 400 to transmit and receiveweb content, such as, for example, location-based content and/or otherweb page content, according to a Wireless Application Protocol (WAP),Hypertext Transfer Protocol (HTTP), and/or the like.

The processor 410 is configured to use the network interface 460 tocommunicate with one or more other devices on the network 150. In thisregard, the network interface 460 includes an antenna 476 operativelycoupled to a transmitter 474 and a receiver 472 (together a“transceiver”). The processor 410 is configured to provide signals toand receive signals from the transmitter 474 and receiver 472,respectively. The signals may include signaling information inaccordance with the air interface standard of the applicable cellularsystem of the wireless network 152. In this regard, the computing devicesystem 400 may be configured to operate with one or more air interfacestandards, communication protocols, modulation types, and access types.By way of illustration, the computing device system 400 may beconfigured to operate in accordance with any of a number of first,second, third, and/or fourth-generation communication protocols and/orthe like.

As described above, the computing device system 400 has a user interfacethat is, like other user interfaces described herein, made up of useroutput devices 436 and/or user input devices 440. The user outputdevices 436 include a display 430 (e.g., a liquid crystal display or thelike) and a speaker 432 or other audio device, which are operativelycoupled to the processor 410.

The user input devices 440, which allow the computing device system 400to receive data from a user such as the user 110, may include any of anumber of devices allowing the computing device system 400 to receivedata from the user 110, such as a keypad, keyboard, touch-screen,touchpad, microphone, mouse, joystick, other pointer device, button,soft key, and/or other input device(s). The user interface may alsoinclude a camera 480, such as a digital camera.

The computing device system 400 may also include a positioning systemdevice 475 that is configured to be used by a positioning system todetermine a location of the computing device system 400. For example,the positioning system device 475 may include a GPS transceiver. In someembodiments, the positioning system device 475 is at least partiallymade up of the antenna 476, transmitter 474, and receiver 472 describedabove. For example, in one embodiment, triangulation of cellular signalsmay be used to identify the approximate or exact geographical locationof the computing device system 400. In other embodiments, thepositioning system device 475 includes a proximity sensor ortransmitter, such as an RFID tag, that can sense or be sensed by devicesknown to be located proximate a merchant or other location to determinethat the computing device system 400 is located proximate these knowndevices.

The computing device system 400 further includes a power source 415,such as a battery, for powering various circuits and other devices thatare used to operate the computing device system 400. Embodiments of thecomputing device system 400 may also include a clock or other timer 450configured to determine and, in some cases, communicate actual orrelative time to the processor 410 or one or more other devices.

The computing device system 400 also includes a memory 420 operativelycoupled to the processor 410. As used herein, memory includes anycomputer readable medium (as defined herein below) configured to storedata, code, or other information. The memory 420 may include volatilememory, such as volatile Random Access Memory (RAM) including a cachearea for the temporary storage of data. The memory 420 may also includenon-volatile memory, which can be embedded and/or may be removable. Thenon-volatile memory can additionally or alternatively include anelectrically erasable programmable read-only memory (EEPROM), flashmemory or the like.

The memory 420 can store any of a number of applications which comprisecomputer-executable instructions/code executed by the processor 410 toimplement the functions of the computing device system 400 and/or one ormore of the process/method steps described herein. For example, thememory 420 may include such applications as a conventional web browserapplication 422, a selective security regulation application 421, entityapplication 424. These applications also typically instructions to agraphical user interface (GUI) on the display 430 that allows the user110 to interact with the entity system 200, the selective securityregulation system 300, and/or other devices or systems. The memory 420of the computing device system 400 may comprise a Short Message Service(SMS) application 423 configured to send, receive, and store data,information, communications, alerts, and the like via the wirelesstelephone network 152. In some embodiments, the selective securityregulation application 421 provided by the selective security regulationsystem 300 allows the user 110 to access the selective securityregulation system 300. In some embodiments, the entity application 424provided by the entity system 200 and the selective security regulationapplication 421 allow the user 110 to access the functionalitiesprovided by the selective security regulation system 300 and the entitysystem 200.

The memory 420 can also store any of a number of pieces of information,and data, used by the computing device system 400 and the applicationsand devices that make up the computing device system 400 or are incommunication with the computing device system 400 to implement thefunctions of the computing device system 400 and/or the other systemsdescribed herein.

FIG. 5 provides a flowchart illustrating a process flow for providingselective security regulations associated with network communications tousers, in accordance with an embodiment of the invention.

As shown in block 510, the system extracts user data associated with auser. The user data may be stored in the data repository of the entitysystem. The user data comprises at least personal information, accountinformation, transaction information, and/or the like. The transactioninformation may comprise transaction amount, transaction date, merchantname, merchant device data, user device data, and/or the like.

As shown in block 520, the system determines one or more characteristicsbased on the extracted user data. The one or more characteristicscomprise exposure rating associated with a user. For example, the systemmay determine based on the transaction data that the user performstransactions only with well-known merchants that do not have historicalexposures (e.g., security related events) and may determine that theuser has low exposure characteristics. The system based on determiningthat the user has low exposure characteristics the system may assign alow exposure rating to the user. In another example, the system mayidentify that the user has performed more than one transaction withunknown merchants that resulted in misappropriation events (e.g.,misappropriation of account, credit card information, or the like)associated with the account of the user, the system may determine thatthe user has high exposure characteristics. In some embodiments, thesystem may utilize confidence scores of the one or more merchants thatare associated with the transactions of the user to determine theexposure rating of the user. In another example, the system may identifythat the user performs transactions frequently at a location that isassociated with high malfeasance percentage and may determine that theuser has high exposure characteristics. In yet another example, thesystem may identify that the user performs transactions at a certaintime of the day (e.g., after midnight) and may determine that the userhas high exposure characteristics. In yet another example, the systemmay identify that the user perform transactions that are associated withhigh transaction amounts and may determine that the user has highexposure characteristics. In some embodiments, the system may use anycombination of the logics described in the above examples to determinethe one or more characteristics of the user based on the extracted userdata. In some embodiments, the system may also create patterns oftransactions associated with the user and may store the patterns oftransactions in the data repository.

As shown in block 530, the system generates a custom security packagefor the user based on the one or more characteristics. The generatedcustom security package may be based on the one or more characteristicsdetermined by the system in block 520. The generated custom securitypackage comprises one or more security measures or regulations. In someembodiments, the system may generate a custom security package with lowlevel security measures based on determining that the user has lowexposure characteristics. In some embodiments, the system may generate acustom security package with high level security measures based ondetermining that the user has high exposure characteristics. In someembodiments, the custom security package generated by the systemcomprises one or more software codes that implements one or morefunctionalities associated with the security measures. For example, thegenerated custom security package may comprise a software code thattriggers and implements additional layer of authentication fortransactions that are categorized as high level exposure transactions.In some embodiments, the system may generate a medium level securitypackage based on determining that the user has medium exposurecharacteristics.

As shown in block 540, the system displays one or more optionsassociated with the custom security package on a user device of theuser. The one or more options may be associated with the securitymeasures in the custom security package generated by the system. Asshown in block 550, the system prompts the user to select at least oneoption from the one or more options. As shown in block 560, the systemreceives the at least one option from the user. For example, the systemmay present a first option comprising generation of notifications, asecond option comprising generation of additional layer ofauthentication before completing the transaction, and a third optioncomprising delaying the completion of transaction until verification ofthe authenticity of the transaction is complete. Upon displaying the oneor more options, the user may choose first option, second option, and/orthe third option. It should be understood that the examples presentedherein are for illustrative purposes only. The custom security packagegenerated in real-time may comprise complicated security measuresincluding but not limited to high level manipulation of data (e.g.,using cryptography) and the like.

As shown in block 570, the system generates a selective security packagecomprising the functionality associated with the at least optionselected by the user. In some embodiments, the system may generate theselective security package based on deleting the securitymeasures/functionalities that are not chosen by the user from the customsecurity package generated by the system in block 530. In someembodiments, the system may generate the selective security packagebased on activating the options selected by the user and keeping theother options as inactive in the custom security package. In such anembodiment, the inactive options may be automatically implemented by thesystem at a later time period based on identifying changes to the one ormore characteristics of the user. For example, the system may identifythat the exposure rating of a user has increased and may furtheridentify that the user has chosen only one option out of the multipleoptions presented by the system. In such an instance, the system mayautomatically activate the other options not selected by the user.

As shown in block 580, the system transfers the selective securitypackage to the user device of the user. In some embodiments, the usermay perform transactions via the user device (e.g., digital wallet). Insuch an embodiment, the system deploys the selective security package tothe user device which will allow the system to trigger functionalitiesvia the selective security regulation application present in the userdevice.

As shown in block 590, the system transfers the selective securitypackage to one or more entity systems associated with handling networkcommunications of the user. In some embodiments, the user may performtransactions via a merchant system (e.g., Point of Sale device ormerchant website) and resource cards (e.g., credit card, debit card, orthe like). In such an embodiment, the transaction goes through theentity system (e.g., financial institution system that verifies thepresence of funds in the account of the user). The system transfers theselective security package to the entity system which will allow thesystem to trigger functionalities associated with the selective securitypackage via the selective security regulation application present in theentity system.

FIG. 6 provides a flowchart illustrating a process flow for implementingthe selective security regulations associated with networkcommunications, in accordance with an embodiment of the invention.

As shown in block 610, the system identifies a network communicationinitiated by the user. The network communication may be a transactioninitiated by the user using the user device or resource cards (e.g.,credit card). In some embodiments, the system identifies the initiationof the transaction via the selective security regulation applicationpresent in the user device. For example, the system may identify thatthe user is using digital wallet to initiate a transaction via theselective security regulation application. In some embodiments, thesystem identifies the initiation of the transaction via the selectivesecurity regulation application present in the entity system. Forexample, the system may identify that the user has initiated atransaction via a resource card based on a verification request receivedby the entity system from a third party transaction system via theselective security regulation application present in the entity system.

As shown in block 620, the system determines a type of the networkcommunication. The system may determine the type of networkcommunication based on one or more factors. The one or more factor maycomprise time of the day, transaction amount, merchant name, merchantlocation, merchant web site in the case of an online transaction, or thelike. For example, the system may identify that the transaction is ahigh exposure transaction based on determining that the transactionamount is above a predetermine threshold. In another example, the systemmay identify that the transaction is a high exposure transaction basedon determining that the location at which the transaction was initiatedis associated with a high malfeasance percentage.

As shown in block 630, the system identifies that the type of thenetwork communication matches with a predetermined type of networkcommunication. The predetermined type of network communication maycomprise a high exposure or medium exposure transaction.

As shown in block 640, the system causes the selective security packageto trigger an action in response to identifying that the type of thenetwork communication matches with a predetermined type of networkcommunication. The actions may comprise functionalities associated withthe options selected by the user. Actions may comprise at least one ofgeneration of notifications, generation of additional layer ofauthentication, delaying the completion of transaction untilverification of the authenticity of the transaction is complete, or thelike. In some embodiments, the process flow described herein may beapplicable for making changes to any account data, personal data, or thelike. For example, if a request is initiated at an odd time of the day,where the request if associated with change of phone number associatedwith an account, the process flow described herein may be used toimplement one or more security regulations.

As will be appreciated by one of skill in the art, the present inventionmay be embodied as a method (including, for example, acomputer-implemented process, a business process, and/or any otherprocess), apparatus (including, for example, a system, machine, device,computer program product, and/or the like), or a combination of theforegoing. Accordingly, embodiments of the present invention may takethe form of an entirely hardware embodiment, an entirely softwareembodiment (including firmware, resident software, micro-code, and thelike), or an embodiment combining software and hardware aspects that maygenerally be referred to herein as a “system.” Furthermore, embodimentsof the present invention may take the form of a computer program producton a computer-readable medium having computer-executable program codeembodied in the medium.

Any suitable transitory or non-transitory computer readable medium maybe utilized. The computer readable medium may be, for example but notlimited to, an electronic, magnetic, optical, electromagnetic, infrared,or semiconductor system, apparatus, or device. More specific examples ofthe computer readable medium include, but are not limited to, thefollowing: an electrical connection having one or more wires; a tangiblestorage medium such as a portable computer diskette, a hard disk, arandom access memory (RAM), a read-only memory (ROM), an erasableprogrammable read-only memory (EPROM or Flash memory), a compact discread-only memory (CD-ROM), or other optical or magnetic storage device.

In the context of this document, a computer readable medium may be anymedium that can contain, store, communicate, or transport the programfor use by or in connection with the instruction execution system,apparatus, or device. The computer usable program code may betransmitted using any appropriate medium, including but not limited tothe Internet, wireline, optical fiber cable, radio frequency (RF)signals, or other mediums.

Computer-executable program code for carrying out operations ofembodiments of the present invention may be written in an objectoriented, scripted or unscripted programming language such as Java,Perl, Smalltalk, C++, or the like. However, the computer program codefor carrying out operations of embodiments of the present invention mayalso be written in conventional procedural programming languages, suchas the “C” programming language or similar programming languages.

Embodiments of the present invention are described above with referenceto flowchart illustrations and/or block diagrams of methods, apparatus(systems), and computer program products. It will be understood thateach block of the flowchart illustrations and/or block diagrams, and/orcombinations of blocks in the flowchart illustrations and/or blockdiagrams, can be implemented by computer-executable program codeportions. These computer-executable program code portions may beprovided to a processor of a general purpose computer, special purposecomputer, or other programmable data processing apparatus to produce aparticular machine, such that the code portions, which execute via theprocessor of the computer or other programmable data processingapparatus, create mechanisms for implementing the functions/actsspecified in the flowchart and/or block diagram block or blocks.

These computer-executable program code portions may also be stored in acomputer-readable memory that can direct a computer or otherprogrammable data processing apparatus to function in a particularmanner, such that the code portions stored in the computer readablememory produce an article of manufacture including instructionmechanisms which implement the function/act specified in the flowchartand/or block diagram block(s).

The computer-executable program code may also be loaded onto a computeror other programmable data processing apparatus to cause a series ofoperational steps to be performed on the computer or other programmableapparatus to produce a computer-implemented process such that the codeportions which execute on the computer or other programmable apparatusprovide steps for implementing the functions/acts specified in theflowchart and/or block diagram block(s). Alternatively, computer programimplemented steps or acts may be combined with operator or humanimplemented steps or acts in order to carry out an embodiment of theinvention.

As the phrase is used herein, a processor may be “configured to” performa certain function in a variety of ways, including, for example, byhaving one or more general-purpose circuits perform the function byexecuting particular computer-executable program code embodied incomputer-readable medium, and/or by having one or moreapplication-specific circuits perform the function.

Embodiments of the present invention are described above with referenceto flowcharts and/or block diagrams. It will be understood that steps ofthe processes described herein may be performed in orders different thanthose illustrated in the flowcharts. In other words, the processesrepresented by the blocks of a flowchart may, in some embodiments, be inperformed in an order other that the order illustrated, may be combinedor divided, or may be performed simultaneously. It will also beunderstood that the blocks of the block diagrams illustrated, in someembodiments, merely conceptual delineations between systems and one ormore of the systems illustrated by a block in the block diagrams may becombined or share hardware and/or software with another one or more ofthe systems illustrated by a block in the block diagrams. Likewise, adevice, system, apparatus, and/or the like may be made up of one or moredevices, systems, apparatuses, and/or the like. For example, where aprocessor is illustrated or described herein, the processor may be madeup of a plurality of microprocessors or other processing devices whichmay or may not be coupled to one another. Likewise, where a memory isillustrated or described herein, the memory may be made up of aplurality of memory devices which may or may not be coupled to oneanother.

While certain exemplary embodiments have been described and shown in theaccompanying drawings, it is to be understood that such embodiments aremerely illustrative of, and not restrictive on, the broad invention, andthat this invention not be limited to the specific constructions andarrangements shown and described, since various other changes,combinations, omissions, modifications and substitutions, in addition tothose set forth in the above paragraphs, are possible. Those skilled inthe art will appreciate that various adaptations and modifications ofthe just described embodiments can be configured without departing fromthe scope and spirit of the invention. Therefore, it is to be understoodthat, within the scope of the appended claims, the invention may bepracticed other than as specifically described herein.

INCORPORATION BY REFERENCE

To supplement the present disclosure, this application furtherincorporates entirely by reference the following commonly assignedpatent application:

U.S. Patent Application Filed Ser. No. Title On 16/860,900 SYSTEM FORRESOURCE Apr. 28, 2020 USAGE MONITORING WITH ACTIVITY SCORING

The invention claimed is:
 1. A system for providing selective securityregulations associated with network communications to a set of users,the system comprising: at least one network communication interface; atleast one non-transitory storage device; and at least one processingdevice coupled to the at least one non-transitory storage device and theat least one network communication interface, wherein the at least oneprocessing device is configured to: extract user data associated with auser of the set of users; determine one or more characteristics based onthe extracted user data, wherein the one or more of the characteristicsrelates to a securing exposure rating associated with the user; generatea custom security package for the user based on the one or morecharacteristics; display a plurality of options associated with thecustom security package on a user device of the user, wherein theplurality of options are associated with a plurality of securitymeasures; receive the at least one option from the user; and deploy afunctionality associated with the at least one option from the customsecurity package, wherein the custom security package comprises aplurality of functionalities associated the plurality of options,wherein the custom security package comprises a set of software codes toimplement the functionality.
 2. The system of claim 1, wherein the atleast one processing device is configured to deploy the functionalitybased on: deleting the plurality of options associated with theplurality of options excluding the functionality associated with the atleast one option from the custom security package to generate aselective security package comprising the functionality associated withthe at least option selected by the user; and transferring the selectivesecurity package to the user device of the user.
 3. The system of claim2, wherein the at least one processing device is configured to transferthe selective security package to one or more entity systems associatedwith handling network communications of the user.
 4. The system of claim3, wherein the at least one processing device is configured to: identifya network communication of the network communications initiated by theuser; determine a type of the network communication; identify that thetype of the network communication matches with a predetermined type ofnetwork communication; and cause the selective security package totrigger an action.
 5. The system of claim 4, wherein triggering theaction comprises generating and transmitting a notification associatedwith the network communication.
 6. The system of claim 4, whereintriggering the action comprises initiating authentication for completingthe network communication.
 7. The system of claim 4, wherein triggeringthe action comprises deferring completion of the network communication.8. A computer program product for providing selective securityregulations associated with network communications to a set of users,the computer program product comprising a non-transitorycomputer-readable storage medium having computer executable instructionsfor causing a computer processor to perform the steps of: extractinguser data associated with a user of the set of users; determining one ormore characteristics based on the extracted user data, wherein the oneor more of the characteristics relates to a securing exposure ratingassociated with the user; generating a custom security package for theuser based on the one or more characteristics; displaying a plurality ofoptions associated with the custom security package on a user device ofthe user, wherein the plurality of options are associated with aplurality of security measures; receiving the at least one option fromthe user; and deploying a functionality associated with the at least oneoption from the custom security package, wherein the custom securitypackage comprises a plurality of functionalities associated theplurality of options, wherein the custom security package comprises aset of software codes to implement the functionality.
 9. The computerprogram product of claim 8, wherein the computer executable instructionscause the computer processor to perform the steps of deploying thefunctionality based on: deleting the plurality of options associatedwith the plurality of options excluding the functionality associatedwith the at least one option from the custom security package togenerate a selective security package comprising the functionalityassociated with the at least option selected by the user; andtransferring the selective security package to the user device of theuser.
 10. The computer program product of claim 9, wherein the computerexecutable instructions cause the computer processor to perform thesteps of transferring the selective security package to one or moreentity systems associated with handling network communications of theuser.
 11. The computer program product of claim 10, wherein the computerexecutable instructions cause the computer processor to perform thesteps of: identifying a network communication of the networkcommunications initiated by the user; determining a type of the networkcommunication; identifying that the type of the network communicationmatches with a predetermined type of network communication; and causingthe selective security package to trigger an action.
 12. The computerprogram product of claim 11, wherein triggering the action comprisesgenerating and transmitting a notification associated with the networkcommunication.
 13. The computer program product of claim 11, whereintriggering the action comprises initiating authentication for completingthe network communication.
 14. The computer program product of claim 11,wherein triggering the action comprises deferring completion of thenetwork communication.
 15. A computer implemented method for providingselective security regulations associated with network communications toa set of users, wherein the method comprises: extracting user dataassociated with a user of the set of users; determining one or morecharacteristics based on the extracted user data, wherein the one ormore of the characteristics relates to a securing exposure ratingassociated with the user; generating a custom security package for theuser based on the one or more characteristics; displaying plurality ofoptions associated with the custom security package on a user device ofthe user, wherein the plurality of options are associated with aplurality of security measures; receiving the at least one option fromthe user; and deploying a functionality associated with the at least oneoption from the custom security package, wherein the custom securitypackage comprises a plurality of functionalities associated theplurality of options, wherein the custom security package comprises aset of software codes to implement the functionality.
 16. The computerimplemented method of claim 15, wherein deploying the functionalitycomprises: deleting the plurality of options associated with theplurality of options excluding the functionality associated with the atleast one option from the custom security package to generate aselective security package comprising the functionality associated withthe at least option selected by the user; and transferring the selectivesecurity package to the user device of the user.
 17. The computerimplemented method of claim 16, wherein the method further comprisestransferring the selective security package to one or more entitysystems associated with handling network communications of the user. 18.The computer implemented method of claim 17, wherein the method furthercomprises: identifying a network communication of the networkcommunications initiated by the user; determining a type of the networkcommunication; identifying that the type of the network communicationmatches with a predetermined type of network communication; and causingthe selective security package to trigger an action.
 19. The computerimplemented method of claim 18, wherein triggering the action comprisesgenerating and transmitting a notification associated with the networkcommunication.
 20. The computer implemented method of claim 18, whereintriggering the action comprises deferring completion of the networkcommunication.